CVE-2026-2105

Name of the Vulnerable Software and Affected Versions yeqifu warehouse versions prior to aaf29962ba407d22d991781de28796ee7b4670e4

Description A flaw exists due to improper authorization within the Department Management component. The issue resides in the addDept(), updateDept(), and deleteDept() functions located in the file datasetreposwarehousesrcmainjavacomyeqifusyscontrollerDeptController.java. This allows for remote exploitation. The project has been notified of the issue but has not yet responded.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.